albert/kreta
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
kreta/Kreta.WebApi/User/Kreta.User.WebApi/Attributes/ApiKeyAuthorizationAttribute.cs
skidoodle e124a47765 init
2024-03-13 00:33:46 +01:00

49 lines
1.5 KiB
C#
Raw Blame History

using System;
using System.Collections.Generic;
using System.Linq;
using System.Web.Http.Controllers;
using System.Web.Http.Filters;
using Kreta.User.WebApi.Infrastructure;
namespace Kreta.User.WebApi.Attributes
{
internal class ApiKeyAuthorizationAttribute : AuthorizationFilterAttribute, IOverrideFilter
{
const string ApiKey = nameof(ApiKey);
public Type FiltersToOverride
{
get
{
return typeof(IAuthorizationFilter);
}
}
private bool AccessGratnedByApiKey(KeyValuePair<string, IEnumerable<string>> apiKeyHeader)
{
if (apiKeyHeader.Value != null)
{
string targetApiKey = apiKeyHeader.Value?.SingleOrDefault();
if (!string.IsNullOrWhiteSpace(targetApiKey) && targetApiKey == ApiKeyConfiguration.Instance.ApiKey)
{
return true;
}
}
return false;
}
public override void OnAuthorization(HttpActionContext actionContext)
{
var headers = actionContext.Request.Headers;
var apiKeyHeader = headers.SingleOrDefault(x => x.Key.Equals(ApiKey, StringComparison.InvariantCultureIgnoreCase));
if (!AccessGratnedByApiKey(apiKeyHeader))
{
actionContext.Response = new System.Net.Http.HttpResponseMessage(System.Net.HttpStatusCode.Unauthorized);
}
}
}
}
Reference in a new issue View git blame Copy permalink